Fedora 36: chromium 2022-59297c8fcd | LinuxSecurity.com
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2022-59297c8fcd
2022-05-07 04:08:14.317529
--------------------------------------------------------------------------------

Name        : chromium
Product     : Fedora 36
Version     : 100.0.4896.127
Release     : 1.fc36
URL         : https://www.chromium.org/Home
Summary     : A WebKit (Blink) powered web browser that Google doesn't want you to use
Description :
Chromium is an open-source web browser, powered by WebKit (Blink).

--------------------------------------------------------------------------------
Update Information:

100 Chromium releases! Of course, at the rate they release now, we'll probably
be at 150 before the end of the year. Anyway, here's the update. Fixes:
CVE-2022-1232 CVE-2022-1305 CVE-2022-1306 CVE-2022-1307 CVE-2022-1308
CVE-2022-1309 CVE-2022-1310 CVE-2022-1311 CVE-2022-1312 CVE-2022-1313
CVE-2022-1314 CVE-2022-1364
--------------------------------------------------------------------------------
ChangeLog:

* Thu Apr 21 2022 Tom Callaway  - 100.0.4896.127-1
- update to 100.0.4896.127
* Tue Apr  5 2022 Tom Callaway  - 100.0.4896.75-1
- update to 100.0.4896.75
* Sat Apr  2 2022 Tom Callaway  - 100.0.4896.60-1
- update to 100.0.4896.60
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #2071876 - CVE-2022-1232 chromium-browser: Type Confusion in V8
        https://bugzilla.redhat.com/show_bug.cgi?id=2071876
  [ 2 ] Bug #2074371 - CVE-2022-1305 chromium-browser: Use after free in storage
        https://bugzilla.redhat.com/show_bug.cgi?id=2074371
  [ 3 ] Bug #2074372 - CVE-2022-1306 chromium-browser: Inappropriate implementation in compositing
        https://bugzilla.redhat.com/show_bug.cgi?id=2074372
  [ 4 ] Bug #2074373 - CVE-2022-1307 chromium-browser: Inappropriate implementation in full screen
        https://bugzilla.redhat.com/show_bug.cgi?id=2074373
  [ 5 ] Bug #2074374 - CVE-2022-1308 chromium-browser: Use after free in BFCache
        https://bugzilla.redhat.com/show_bug.cgi?id=2074374
  [ 6 ] Bug #2074375 - CVE-2022-1309 chromium-browser: Insufficient policy enforcement in developer tools
        https://bugzilla.redhat.com/show_bug.cgi?id=2074375
  [ 7 ] Bug #2074376 - CVE-2022-1310 chromium-browser: Use after free in regular expressions
        https://bugzilla.redhat.com/show_bug.cgi?id=2074376
  [ 8 ] Bug #2074377 - CVE-2022-1311 chromium-browser: Use after free in Chrome OS shell
        https://bugzilla.redhat.com/show_bug.cgi?id=2074377
  [ 9 ] Bug #2074378 - CVE-2022-1312 chromium-browser: Use after free in storage
        https://bugzilla.redhat.com/show_bug.cgi?id=2074378
  [ 10 ] Bug #2074379 - CVE-2022-1313 chromium-browser: Use after free in tab groups
        https://bugzilla.redhat.com/show_bug.cgi?id=2074379
  [ 11 ] Bug #2074380 - CVE-2022-1314 chromium-browser: Type Confusion in V8
        https://bugzilla.redhat.com/show_bug.cgi?id=2074380
  [ 12 ] Bug #2076274 - CVE-2022-1364 Chromium-browser: Type Confusion in V8.
        https://bugzilla.redhat.com/show_bug.cgi?id=2076274
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2022-59297c8fcd' at the command
line. For more information, refer to the dnf documentation available at
https://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list -- [email protected]
To unsubscribe send an email to [email protected]
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/[email protected]sts.fedoraproject.org
Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure

Fedora 36: chromium 2022-59297c8fcd

May 7, 2022
100 Chromium releases! Of course, at the rate they release now, we'll probably be at 150 before the end of the year

Summary

Chromium is an open-source web browser, powered by WebKit (Blink).

Update Information:

100 Chromium releases! Of course, at the rate they release now, we'll probably be at 150 before the end of the year. Anyway, here's the update. Fixes: CVE-2022-1232 CVE-2022-1305 CVE-2022-1306 CVE-2022-1307 CVE-2022-1308 CVE-2022-1309 CVE-2022-1310 CVE-2022-1311 CVE-2022-1312 CVE-2022-1313 CVE-2022-1314 CVE-2022-1364

Change Log

* Thu Apr 21 2022 Tom Callaway - 100.0.4896.127-1 - update to 100.0.4896.127 * Tue Apr 5 2022 Tom Callaway - 100.0.4896.75-1 - update to 100.0.4896.75 * Sat Apr 2 2022 Tom Callaway - 100.0.4896.60-1 - update to 100.0.4896.60

References

[ 1 ] Bug #2071876 - CVE-2022-1232 chromium-browser: Type Confusion in V8 https://bugzilla.redhat.com/show_bug.cgi?id=2071876 [ 2 ] Bug #2074371 - CVE-2022-1305 chromium-browser: Use after free in storage https://bugzilla.redhat.com/show_bug.cgi?id=2074371 [ 3 ] Bug #2074372 - CVE-2022-1306 chromium-browser: Inappropriate implementation in compositing https://bugzilla.redhat.com/show_bug.cgi?id=2074372 [ 4 ] Bug #2074373 - CVE-2022-1307 chromium-browser: Inappropriate implementation in full screen https://bugzilla.redhat.com/show_bug.cgi?id=2074373 [ 5 ] Bug #2074374 - CVE-2022-1308 chromium-browser: Use after free in BFCache https://bugzilla.redhat.com/show_bug.cgi?id=2074374 [ 6 ] Bug #2074375 - CVE-2022-1309 chromium-browser: Insufficient policy enforcement in developer tools https://bugzilla.redhat.com/show_bug.cgi?id=2074375 [ 7 ] Bug #2074376 - CVE-2022-1310 chromium-browser: Use after free in regular expressions https://bugzilla.redhat.com/show_bug.cgi?id=2074376 [ 8 ] Bug #2074377 - CVE-2022-1311 chromium-browser: Use after free in Chrome OS shell https://bugzilla.redhat.com/show_bug.cgi?id=2074377 [ 9 ] Bug #2074378 - CVE-2022-1312 chromium-browser: Use after free in storage https://bugzilla.redhat.com/show_bug.cgi?id=2074378 [ 10 ] Bug #2074379 - CVE-2022-1313 chromium-browser: Use after free in tab groups https://bugzilla.redhat.com/show_bug.cgi?id=2074379 [ 11 ] Bug #2074380 - CVE-2022-1314 chromium-browser: Type Confusion in V8 https://bugzilla.redhat.com/show_bug.cgi?id=2074380 [ 12 ] Bug #2076274 - CVE-2022-1364 Chromium-browser: Type Confusion in V8. https://bugzilla.redhat.com/show_bug.cgi?id=2076274

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-59297c8fcd' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
Name : chromium
Product : Fedora 36
Version : 100.0.4896.127
Release : 1.fc36
URL : https://www.chromium.org/Home
Summary : A WebKit (Blink) powered web browser that Google doesn't want you to use

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.